by Jean-Christophe Gaillard | Mar 13, 2020 | CISO WaterCooler, Collaboration, Feature, Information Security
A decade of firefighting has taken its toll on the CISO profession The role of the CISO is changing. If that was ever the case, it can no longer be seen JUST as a technical role. In some industries, it is being challenged by the world-wide tightening of regulations...
by Jean-Christophe Gaillard | Feb 4, 2020 | Collaboration, Feature, Information Security, Role of the CIO
5 key points to drive culture change around cyber security Culture and governance are key to drive change around cyber security behaviours, but too many awareness programmes focus simply on superficial technical gimmicks. Let’s start by deconstructing 3 clichés which...
by Jean-Christophe Gaillard | Jan 10, 2020 | Collaboration, Feature, Information Security, Role of the CIO
One Board member must be in charge and their pay package must ride on it In 2015, in the wake of the TalkTalk data breach which made a massive impact in the UK media and even got politicians involved, we first explored the key questions the Board should ask in large...
by Jean-Christophe Gaillard | Dec 6, 2019 | CISO WaterCooler, Collaboration, Feature, Information Security
The Tactical Trap Many CISOs struggle to look beyond day-to-day firefighting and get trapped in tactical games. We highlighted this last year in the context of our “100 Days” series and it is one of the major factors preventing organisations from developing better...
by Jean-Christophe Gaillard | Nov 26, 2019 | Collaboration, Feature, Information Security, Role of the CIO
The Security industry talks a lot about what could go wrong … but not so much about how to improve things Research released today by The Security Transformation Research Foundation, ahead of the Cyber Security Leadership Summit in Berlin on 12-14 November 2019,...
by Jean-Christophe Gaillard | Nov 11, 2019 | Collaboration, Information Security, Role of the CIO
Security Organizations must evolve. The CISO cannot be credible on all fronts A recent comment I read on Linkedin made me think. It was in response to a post on zero-day vulnerabilities and software patching, and roughly translated from the French, it read as follows:...